Updated firefox packages fix security vulnerabilities
Publication date: 05 Apr 2020Type: security
Affected Mageia releases : 7
CVE: CVE-2020-6819 , CVE-2020-6820
Description
Updated firefox packages fix security vulnerabilities: Under certain conditions, when running the nsDocShell destructor, a race condition can cause a use-after-free (CVE-2020-6819). Under certain conditions, when handling a ReadableStream, a race condition can cause a use-after-free (CVE-2020-6820).
References
SRPMS
7/core
- firefox-68.6.1-1.mga7
- firefox-l10n-68.6.1-1.mga7